The host is installed with IBM DB2 9.1 before FP10 or 9.5 before FP7 or 9.7 before FP3 and is prone to buffer overflow vulnerability. A flaw is present in the DB2 Administration Server (DAS) component of the application, which is caused due to a boundary error in the "receiveDASMessage()" function in db2dasrrm. Successful exploitation allows remote attackers to cause a denial of service, or execution of arbitrary code.